Bitcoin Forum

After the recent issue of Bitmex which was the Mass email leak (https://cointelegraph.com/news/breaking-bitmex-may-have-just-leaked-all-of-their-users-emails) of its users I received a random email from this email address: info@bitmex-explained.com which is seems legit yet suspicious.
The content of the e-mail is all about the recent email privacy issue of Bitmex and it stated some instructions or guides how our account become safe.

I become curious when the e-mail suggested to create a new account on Bitmex with new email address. And they give a link to the register form of Bitmex with referral inside of the given link. Check the images below.

https://i.imgflip.com/3f4a6b.jpg (https://imgflip.com/i/3f4a6b)  https://i.imgflip.com/3f4aan.jpg (https://imgflip.com/i/3f4aan)  https://i.imgflip.com/3f4ac7.jpg (https://imgflip.com/i/3f4ac7)

Those links in the instruction that talks about creating a new account consist of referral links when I tried to open those links.

So this kind of scammer/hacker maybe is just into commission on every account he/she can able to hook via his/her referral link? Hmmm. Since he is just spreading his referral links.

I already reported this to the support of Bitmex and  they told that they only have two official email addresses that they are using;

Please be aware everyone. I am still waiting for their reply since I already forwarded the e-mail that I received on that suspicious email address.
Also check the article published by Bitmex regarding the recent issue : Updated: Statement on the Email Privacy Issue Impacting Our Users (https://blog.bitmex.com/updated-statement-on-the-email-privacy-issue-impacting-our-users/)

Thank you for the heads up you brought it here and this a great help to those newbies who had an account on Bitmex.

Bitmex was already aware of these issues and I think they are already fixing on it. And if possible users may change their email account on that exchange to avoid keep sending spam message from the fake email.

The statement on Bitmex staff,

And see this twitter post talking about Bitmex staff requesting to change your email as soon as possible.
https://twitter.com/_blockandchain_/status/1190192708096274432

Thank you for once again reminding people that you need to be extremely careful when working with mail.
Scam emails are quite common and experienced users are already accustomed to such mailings and do not even open emails of this kind.

If you are dealing with any exchange or site where your funds are located, you must first remember and write down,
add official mailing addresses of these resources to your contacts so that in the future you do not have to guess from whom you received a letter.

If you at least for a moment doubt that the letter from an official source do not even open it.

I'm pretty sure I've seen a similar warning before and yes, they indeed send referral links since a lot of other people have already stated it themselves that they have received the same email as you did. Still, thanks for the heads up once again though.

Referral links aren't the only scary thing with these types of emails, there's also a possibility of malware being sent to you through the link itself, so avoiding these types of email would be for the best. If possible, people should put these types of emails to spam so that future emails that are as such would or should automatically be moved to the spam folder ( If I understood correctly how that works).

@GreatArkansas can you confirm that the bitmex site from the email is legit but it's just coming from someone's ref link?

Good thing I've read this thread and visited on this board. When I was checking my email address that used in Bitmex I saw that there is a message on the spam folder. But I usually ignore if I received an email from the spam folder of my email account. I will change my email account later today and get to junk the old one. Therefore, even Binance was an experienced hacking incidence that has strong security I think there no safe on exchange sites. This is a red alert to those Bitmex exchange users.

Exactly. Bitmex site links in the e-mail is legit but the only not legit are those instructions and guides, and the most suspecious is the link that lead to the sign up page of Bitmex because it contain a referral link by someone.
The best way to contact bitmex is via their contact form : https://www.bitmex.com/app/support/contact

And they also told this;
It is much better if you found some suspecious sites or email addresses report it to them immediately so we can also help. There's lot of them spreading everywhere.

You say you've found an email in your spam folder but did you read that email? It's the same as this one or it's another one?
It's spam for referral link too, or it's a real phishing attempt with a fake page?

That's a good catch, It is really important to check where the email is coming, we should not click right away and we need to familiarize the legit emails of the exchanges that we are registered so if there is slight changes we can notice.
This should be reported or if you found another phishing site report it here or directly on your email provider. https://safebrowsing.google.com/safebrowsing/report_phish/?hl=en

It's just the first of many opportunistic attempts to monetize the mass email address leak. It doesn't seem like a phishing scam, just an attempt to get referral commissions.

The email is actually correct about this point: Affected users should empty out their accounts and open new accounts with new email addresses. You don't need to use their referral link, though. ;)

Otherwise, to change the address linked to your BitMEX account you need to complete KYC verification.

This information will be very helpful in spreading more awareness on this kinds of phishing attempts throughout the crypto industry!

Now I wonder what will happen to people who are not in this forum and are clueless about these kind of incidents especially if there is no one to warn them?

We really need to be cautious this time. Everyone is aiming to earn money because its that time of the year where people are in need to earn and save for the incoming holiday. Let us all be cautious especially with links, there are many ways to execute a crime just by making the target clink the link then the malicious malwares will do it's work and then everything will be at risk or worse, messed up. People should learn their lessons for this isn't the first time.

A quick update from Bitmex, they sent some e-mail for their users for sure. If you have an account in Bitmex, for sure you also received their e-mail regarding the recent issue which is the mass email leaks.
The email titled with: Important Notice: Public User Email Disclosure

As you can see on the first part of the e-mail, they are really super strict, and that's good. Always remember: “support@bitmex.com” and “noreply@bitmex.com” are the official and only email address of Bitmex as of now.

https://i.imgflip.com/3fbfw5.jpg (https://imgflip.com/i/3fbfw5)

I have received the e-mail notification so I have to be careful when looking at the original e-mail, the information here is very helpful to me and I just checked the e-mail is still a message that comes with spam.